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Claim 1 (currently amended): A user authentication system, comprising: 
a data holding medium for holding a common key unique to a user, used in a common- 
key encryption method for authentication be tween the date holding medium held by the user and 
an authentication apparatus, and a private k ev used in a nublic-kev encryption method to the 
authentication between the data holding me d ium and a s? rver to perform a service to the nsar- 

whoroin the data holding medium mchidoa a iqdio function for conding information roa d 
from tho data holding medium by radio, and writing information to tho data holding modium by 

saidaa authentication apparatus for holding the common key used in the common-key 
encryption method and a private key used in a public-key encryption method, each unique to the 
user; and 

an information processing apparatus connected to the authentication apparatus in an 
always-communicable manner and provided with a function for performing authentication by 
the public-key encryption method; 

wherein the authentication apparatus performs authenticatio n, authenticating the data 
holding medium by using the common key used in common-kev encryption method for the umt 
held by the data holding medium nn d tho common k uy hold by tho auth e ntication apparatus , in 
response to an user-authentication request sent from the information processing apparatus, and, 
only when the user has been authenticated, performs processing for making the information 
processing apparatus authenticate the user by using the private key corresponding to the user, 
wherein information encrypted bv th e p u bli c- k ev encryption method is sent frn m the information 
processing apparatus, forwarded to the authen t ication apparatus, decrypted nsing the private key 
corresponding to the user so as to ob tain decrypted information- 

wherein the decrypted information is encrvnted m ftft nS using the common kev: and 

wherein the obtained common kev encrypted informatio n is sent hack to the data holding 
medium. 



Claim 2 (original): An authentication system as claimed in Claim 1, wherein the data 
holding medium is portable. 
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Claim 3 (original): An authentication system as claimed in Claim 1, wherein the 
^formation processing apparatus is a mobile communication apparatus. 

Claim 4 (original): An authentication system as claimed in Claim 1, wherein the data 
holding medium and the information processing apparatus are integrated as a unit. 

Claim 5 (currently amended): A user authentication method for a user who carries a data 
holding apparatus for holding a common key unioue to a user. mad in a common-key encryption 
method for authentication of the data holding apparatus held bv the user ™A an authentication 
apparatus for authentication between the d ata holding apparatus and a server to perform a service 
to the user, the method comprising the steps of: 

r e ading tho common koy from tho data holding apparatus by radio; 

authenticating th e data holding apparatus of the user by the common-key encryption 
method by using the common key held by the data holding apparatus of tho uoor in response to 
an roe? authentication request from the server , and 

performing, only when the user has been authenticated, processing for authenticating the 
user by a public-key encryption method. 

Claim 6 (original): A user authentication method as Claimed in Claim 5, wherein the 
data holding medium is portable. 

Claim 7 (original): A user authentication method as claimed in Claim 5, wherein the 
user authentication request is sent from an information processing apparatus. 

Claim 8 (original): A user authentication method as claimed in Claim 7, wherein the 
information processing apparatus and the data holding apparatus are integrated as a unit. 

Claim 9 (original): A user authentication method as claimed in Claim 7, wherein the 
information processing apparatus has a communication function, 
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Claim 10 (original); A user authentication method as claimed in Claim 5, wherein the 
data holding apparatus is an IC card. 

Claim 1 1 (original): A user authentication method as claimed in Claim 9, wherein the 
data holding apparatus is an IC card. 

Claim 12 (original): A user authentication method as claimed in Claim U, wherein the 
information processing apparatus has a communication function, a browser function for 
accessing information on the Internet, and a reader and writer function for reading and writing 
the IC card. 

Claim 13 (currently amended); An authentication method, comprising the steps of: 
holding a common key unique to a user used j n a common-key encryption method for 
au thentication between a data holding apparatus held bv the nsar * nd an authentication apparatus. 
and a private key used in a public-key encryption metho d to the authentication between the data 
holding apparatus and a server to perform a service to th^ fr«u>«*H user; 

sending tho common IcovanHthn privntnirnymnd f-s m rn r huc c r by radio, 
authenticating, in response to an trap authentication request sent from an external 
information processing apparatus, the data holding annarah^^ by using the held common key 
for tho uoor and a common k u y- used in the common-key encryption method for the user w hiah 
thouoorhoo and is h eld by the a data holding apparatus; and 

performing, only when the »ser data holding apparatus has been authenticated in the 
authentication step, processing for making the information processing apparatus authenticate the 
«se r data holding apparatus by the public-key encryption method by using the private key 
corresponding to the user, wherein information pn ^ted bvthe nuhljc-kev encryption method is 
sent from the server, forwarde d to t h e aut hent ication apparatus, decrypted hv an authentication 
device using the private key corresponding to the user so as to obtain Herrvpted infoimation- 
wherein the decrypted inform atio n is encrvntert means usippr the common key; B " H 
wherein the obtained common kev encrypted info r mation is sent b ack to th ft rfata nnMi^ 
apparatus. 
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Claim 14 (currently amended): An authentication apparatus, comprising: 
a holder for holding a common key unique to a user, ns^H m a common-key encryption 
method fW authentication between a data holding me dium held hv the user and an authentication 
apparatus, and a private key used in a public-key encryption method, for oaoh to the 
authentication between the data holding m edium and a server to perform a service tn th* n ^r : 

the holder for holding tho common key and tho privato key inoluding a radio funotion for 
ponding information road from tho hold e r by radio, and writing information to tho holdor by 
radio} and 

an authenticating device for, in response to a-wsefan. authentication request sent from the 
sgrver ^an oxtomol inftumation proooosing apparatus auth e nticating tho uooi- a uthenticating the 
data holding medium b y using the common key for tho uaor hold by tho holdor and a common 
key-used in-fee-_common'key encryption method for the user held by a-tiiedata holding medium 
e^fee-ase*, and for, only when the data holding medium*^ ha* been authenticated, bv using 
the common key S , jerfonrun g _a processing for malting tho information processing apparatua 
authontiooto th e uoor by tho publio koy onoryption meth o d - authenticating between the data 
holding medium and the server b y using the private key corresponding to the a buser, wherein 
information encrypted by the p ublic-k e y en c r y p tion method is sent from the server, forwarded tn 
fee authentication apparatus, decrypted hv the authentication device using the private k ey 
corresponding to the use r so as to obtain decrypted information; 

w herein the decrypted information is encrypted mean s using the common kev: and 

wherein the obtained common kev encrypted info rmation is sent back to the data holdin g 
medium, 

Claim 15 (original): An authentication apparatus as claimed in Claim 14, wherein the 
authentication apparatus has a private key used in the public-key encryption method. 

Claim 16 (original): An authentication apparatus as claimed in Claim 14, wherein the 
data holding medium is an IC card. 



PAGE 8115 ' RCVD AT 12/712005 3:44:05 PM [Eastern Standard Time] ' SVR:USPT0-EFXRMM2 * DNIS:2738300 ' CSID:312 372 4425 ' DURATION (mm-ss):05-10 



DEC 07 2005 20:48 FR BELL BOYD & LLOYD 312 372 4425 TO 8048 1 57 1 2738300 P. 
Appl. No. 09/846,522 

Reply to Office Action of September 12, 2005 

Claim 17 (original): An authentication apparatus as claimed in Claim 16, wherein the 
information processing apparatus has a reader and writer function for reading and writing the IC 
card. 

Claim 18 (original): An authentication apparatus as claimed in Claim 14, wherein the 
data holding medium is integrated with the information processing apparatus as a unit. 

Claim 19 (original): An authentication apparatus as claimed in Claim 14, wherein the 
information processing apparatus is a mobile communication apparatus. 

Claim 20 (original): An authentication apparatus as claimed in Claim 19, wherein the 
information processing apparatus has a communication function, and a browser function for 
accessing information on the Internet. 
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Claim 21 (currently amended): A user authentication system, wherein a data holding 
medium for holding a common key unique to a user, used in a common key encryption method, 
comprising: 

a server for sending an authentication request to perform a service to the user; and 
an authentication apparatus comprising, 

a holding means for holding the common key used in a common-key encryption method 
for authentication between a data holding medium held by the user and the authentication 
apparatus, said holding means holding a private key used in a public-key encryption method to 
the authentication between the data holding medium and the server; 

tho holding moano inoluding a radio function for sending information read from the 
ho lding moans by radio, and wilting information to tho holding moons by radio; and 

means for authenticating the data holding medium by using the common key-for tho use* 
held by tho holding moanc and a common k oy used in the-common-key encryption method for 
the user held by the data holding medium in response to the authentication request sent from the 
server, said authenticating means performing a processing for authentication between the data 
holding medium and the server by using the private key corresponding to the user when the data 
holding medium has been authenticated by using the common keys , wherein information 
gncyypted oy the public-kev encryption m ethod is sent from the server, forwards to th* 
authentication apparatus, decrypted bv th e au th e nft>. a «n n device name the private Vev 
corresponding to the us er so as to obtain decrypted information; 

wherein the decrypted information is encrypted m eans using the common Vfty , 

wherein , the obtained common key encrypted informa t ion is sent hack to the data holding 
medium. 
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Claim 22 (currently amended): An authentication method between a data holding 
medium and a server by an authentication apparatus, said data holding medium holding a 
common key unique to a user, used in a common-key encryption method, wherein said 
authentication apparatus holds the common key and a private key used in a public-key 
encryption method, the authentication method comprising the steps of: 

s e nding tho oommon key and tho privato koy from tho data holding modium to tho 
aathontioation apparatus by radio and writing information roooivod from tho auth e ntication 
opparatuo to tho data holding medium by radio; - 

authenticating, in response to an authentication request sent form the server to perform a 
service to the user, the data holding medium by using the common key for tho ucor hold by tho 
authentication apparatua and a oommon koy -used in fee common-key encryption method for the 
userheld by the data holding medium, and for, only whm t he data hn1rifn r medium has bean 
authentica ted, bv using the common kevs : and 

performing a processing for authentication between the data holding medium and the 
server by using the private key corresponding to the user when the data holding medium has 
been authenticated by using the common keys ^herein information anrrvpted bv the p nhlir-lrey 
encryption method , is sent from the server, forwarded to the aut h entication annaratus. decrypted 
by_ the authentication device using the nrivatp kev corresp rH fag to the usar so as to ohtain 
decrypted information; 

wherein the decrypted information is encryp ted means using the common kev: and 

wherein the obtained common kev enervated infor mation is sent b ack to the data hnlHir^ 
medium. 
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Claim 23 (currently amended): An authentication apparatus, comprising: 
a holding means for holding a common ke y unique to a user, used in a common-key 
encryption method for authentication between a data holding medium held by the user and the 
authentication apparatus, said holding means holding a private key used in a public-key 
encryption method for authentication between the data holding medium and a serve r to perform a 
Service to the user: 

tho data holding medium including q radio funotion for ponding information road from tho 
dat a holding medium to tho authentioation apparatus by radio, and writing information roouvotl 
from tho authentication apparatuc to the data holding medium by radio; and 

means for authenticating the data holding medium by using the common key forthousef 
he ld by tho holding moons and a common k uj used in the common-key encryption method for 
the user held by the data holding medium, and for, only when the, data holding medium has been 
authenticated, by using the common fays , , in response to the authentication request sent from the 
server, said authenticating means performing a processing for authentication between the data 
holding medium and the server by using the private key corresponding to the user when the data 
holding medium has been authenticated by using the common keys , wherein information 
enc rypted by the public-kev enervation me t hod is sent from the server, forwarded to the 
authentication apparatus, decrypted bv ths authentic™ device usin g the nrivate lcav 
corresponding to the use r so as to obtain decrypted information; 

wherein the decrypted information is encrypted means using the common v^r an A 

wherein the obtained common key encrypted in fo rmation is sent back to the data holding 
medium. 
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